In Canada, personal information obtained by businesses for both customers and employees is protected by the law. PIPEDA, the Personal Information Protection and Electronic Documents Act, is the Canadian legislation that governs how businesses collect, use and disclose personal information.
PIPEDA is broken down into 10 governing principles:
Last month, additional requirements were implemented that now compel private-sector businesses to report when there has been a privacy breach.
In other words, if personal information, in your possession, is lost, accessed without authorization or mistakenly shared, you must report it to the individual whose information was breached and with the Office of the Privacy Commissioner. Failure to do so could result of fines up to $100,000 for each affected individual.
As a business who collects personal data, it is important, both in light of this revision and in consideration of Principle 7, that your business takes the necessary measures to protect data.
Specifically, organizations must implement safeguards to protect the data from being stolen, accessed without authorization, copied, used or modified, regardless of the format in which it is held (i.e. electronic, hardcopies, etc.).
While the safeguard used is not specified, it must be appropriate to the sensitivity of the information collected – what it contains, how much there is, how it is distributed and its format.
To protect your personal data, consider these eight tips:
Whether protecting devices when not in use, safeguarding servers or securing hard copies of personal data, Sonitrol Western Canada’s access control solutions can help restrict and track access to personal information.
Managed access control, or keyless entry, is one of the easiest, most cost-effective ways for you to increase security.
Access control allows you to track and restrict who goes where and when, whether it is access to your business as a whole or to specific areas and rooms where data is stored. This limits the risk of internal theft and external threats. Controlled access gives you more oversight of your facility's activity while saving you money and time.
Sonitrol access management system is integrated with our Sonitrol intrusion detection system so different employees can have different access levels. Employees who are authorized will be allowed access and be able to disarm the security system. Employees who are not authorized will not be allowed access to the facility when the security system is armed.
When an employee leaves, or is reassigned, our uniquely designed access control cards are easily deactivated and updated, or new cards can be issued whenever needed. No more lost keys. Eliminate the expense of installing new locks or re-keying.
For more information on Sonitrol Access Control and how it can help you protect personal information, contact us today.